Application Security Weekly (Audio)
291 episodes - English - Latest episode: 24 days ago - ★★★★★ - 11 ratingsThe Application Security Weekly podcast delivers interviews and news from the worlds of AppSec, DevOps, DevSecOps, and all the other ways people find and fix software flaws.
Join hosts Mike Shema, John Kinsella, and Akira Brand on a journey through modern security practices for apps, clouds, containers, and more.
Homepage Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
Buffet Overflow - Application Security Weekly #40
November 21, 2018 10:00 - 1 hour - 59 MBThis week, Keith and Paul interview John Kinsella, Vice President of Container Security at Qualys! John discusses Qualys’ Container Security, continuous discovery, and tracking for containers and images! In the Application Security News, Instagram leaks passwords to the public, Clickjacking on Google MyAccount Worth $7,500, James Wickett's thread on Open Source SAST options, an advanced search tool for sensitive information stored in GitHub repos, and more! Full Show Notes: https://wik...
Boston Accent - Application Security Weekly #39
November 14, 2018 10:00 - 1 hour - 53 MBThis week, Keith and Paul interview Brian Kelly, Head of Conjur Engineering at CyberArk! Brian focuses on creating products that add much-needed security and identity management to the landscape of DevOps tools and cloud systems. In the Application Security News, DJI Drone Vulnerability, Hackers are increasingly destroying logs to hide attacks, Adobe ColdFusion servers under attack from APT group, understanding Open Source Code use in your business, and more! Full Show Notes: https://w...
Ultimate Nirvana - Application Security Weekly #38
November 07, 2018 10:00 - 51 minutes - 48.8 MBThis week, Keith and Paul interview Daniel Cuthbert, Global Head of Security Research for Banco Santander! In the Application Security News, a nasty DHCPv6 packet can Pwn vulnerable Linux Boxes, 'Stalkerware' website let anyone intercept texts of tens of thousands of people, twelve malicious Python libraries found and removed from PyPI, the U.S. Department of Defense Guide for "Detecting Agile BS", and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode38 Visit https:/...
Eggplant Volcanoes - Application Security Weekly #37
October 31, 2018 09:00 - 1 hour - 67.9 MBThis week, Keith and Paul interview Johnny Xmas, Director of Field Engineering at Kasada.io! In the Application Security News, Millions of passengers affected by Cathay Pacific Airline Hack, China has been hijacking the internet backbone of Western countries, how proficient are developers at fixing Application Security flaws, MicroTik Router Bug is as bad as it gets, and more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode37 Visit https://www.securityweekly.com/asw for ...
Two Phones - Application Security Weekly #36
October 24, 2018 21:00 - 56 minutes - 52.1 MBThis week, Paul and April Wright discuss a jQuery Plugin that has been exploited for years is finally getting patched, a flaw in LibSSH leaves thousands of servers at risk, a remote code implantation flaw found in Medtronic Cardiac Programmers, hackers hiding Cryptocurrency malware in Adobe flash updates, how the government is finally rolling out 2 Factor Authentication for Federal Agency Domains, and how Disney is helping women from across their company to become Developers! Full Show...
Git On That - Application Security Weekly #35
October 17, 2018 09:00 - 1 hour - 56.4 MBThis week, Keith and Paul interview Garrett Gross, Senior Solutions Engineer at Rapid7! They talk about catching bugs earlier in the process of development, what can lead to certain successes in development, and more! In the Application Security News, Git Project patches Remote Code Execution Vulnerability, Google is shutting down Google+ after 500k accounts potentially affected by a data breach, Facebook wants people to Invite its cameras into their homes, GitHub introduces user blocking no...
Bring Yoga Pants - Application Security Weekly #34
October 03, 2018 09:00 - 1 hour - 53.6 MBThis week, Keith and Paul talk about landing a job in Application Security! They discuss attending local meetups and conferences, practicing your coding skills, getting educated by World Class security researchers, doing your homework, and much more! In the Application Security News, Facebook discloses the loss of at least 50 millions access tokens, Google admits to allowing hundreds of companies to read your email, FireFox Monitor will alert you when your accounts have been Pwned, Microsoft...
Don't Hit Me Up - Application Security Weekly #33
September 26, 2018 09:00 - 1 hour - 70.4 MBThis week, Keith and special guest host April Wright interview Ron Gula, Founder of Tenable and Gula Tech Adventures! They discuss security in the upcoming elections, how to maintain separation of duties, attack simulation, and more! In the Application Security News, Hackers stole customer credit cards in Newegg data breach, John Hancock now requires monitoring bracelets to buy insurance, the man who broke Ticketmaster, new security settings available in iOS 12, State Department confirms dat...
Sharks With Laser Beams - Application Security Weekly #32
September 19, 2018 09:00 - 1 hour - 68.9 MBThis week, Keith Hoodlet and Paul Asadoorian interview April Wright from ArchitectSecurity.org! Next, bugs, breaches, and more in the Application Security News! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode32 Visit https://www.securityweekly.com/asw for all the latest episodes!
Around the World - Application Security Weekly #31
September 12, 2018 09:00 - 1 hour - 73.5 MBThis week, Keith and Paul interview Zane Lackey, Chief Security Officer and Founder of Signal Sciences! In the news, U.S. government releases Post-mortem on Equifax, Microsoft Windows Zero-Day found in Task Scheduler, British Airways breached via XSS, Windows subsystem Linux for Linux Distros, Bug Bounties and mental health, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode31 Visit https://www.securityweekly.com/...
A Mixture of Spices - Application Security Weekly #30
August 29, 2018 09:00 - 59 minutes - 57.7 MBThis week, Keith and Paul discuss The Apache Struts2 RCE Vulnerability! In the news, Using Signal Sciences to defend against Apache Struts, PHP flaw puts WordPress sites at risk, Oracle will charge for Java starting in 2019, how Netflix does Failovers in 7 minutes flat, Burp Suite 2.0 Beta released, even anonymous coders leave fingerprints, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode30 Visit https://www.sec...
Always More to Learn - Application Security Weekly #29
August 22, 2018 09:00 - 1 hour - 63 MBThis week, Keith and Paul interview Tom McLaughlin, Founder of ServerlessOps! In the final segment, we air a Pre-Recorded segment with Paul and Matt Alderman, as they sat down at DEF CON to talk all things AppSec, vendors that were there, and companies they had briefings with from our pool cabana! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode29 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to...
Don't Trust Them - Application Security Weekly #28
August 15, 2018 09:00 - 1 hour - 62.4 MBThis week, Keith is joined by Dr. Doug White to discuss Secure Coding Practices! In the news, Comcast security flaws, Facebook plans to partner with banks, hacker finds ‘God Mode’ in x86 CPU’s, bypassing CSP using polyglot JPEGs, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode28 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to sign up for...
We Do Not Discriminate - Application Security Weekly #27
August 08, 2018 09:00 - 1 hour - 44.8 MBThis week, Keith and James Wickett interview Galen Hunt, Distinguished Engineer and Director at Microsoft! In the news, hackers automate the laundering of money via Clash of Clans, Epic Games sidesteps the Play Store with Fortnite for Android launch, the most exciting game, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode27 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https:/...
Wu-Tang for Life - Application Security Weekly #26
August 01, 2018 09:00 - 1 hour - 56.6 MBThis week, Keith and Paul interview Jessica Rozhin, Security Engineer at Marqeta! In the news, New Spectre attack can remotely steal secrets, Microsoft discovers supply chain attack at unnamed maker of PDF Software, XSS filter in edge, and OWASP iGoat is a vulnerable swift application for iOS! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode26 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures/asw to sig...
A Friendly Tip - Application Security Weekly #25
July 25, 2018 09:00 - 1 hour - 63.3 MBThis week, Keith and Paul interview Joe Garcia, Global Corporate Solutions Engineer at CyberArk! In the news, Venmo caught publishing all transactions publicly, Oracle releases critical patches, Microsoft releases PowerShell Core for Linux, Health insurers are vacuuming up details about you, changing your screen to Grayscale can help fight phone addiction, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode25 Visit...
The World of History - Application Security Weekly #24
July 18, 2018 09:00 - 1 hour - 57.3 MBThis week, Keith and Paul discuss AppSec Solutions is a DevOps World! In the news, Compromised JavaScript Package Caught Stealing npm Credentials, remote iOS bugs, a $39 device that can defeat iOS USB Restricted mode, Broadcom buys CA Technologies, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode24 Visit https://www.securityweekly.com/asw for all the latest episodes! Visit https://www.activecountermeasures...
Uncle Teeth - Application Security Weekly #23
July 11, 2018 09:00 - 58 minutes - 50.6 MBThis week, Keith and Paul talk The Hardest Problem in Application Security: Visibility. In the news, Google patches critical remote code execution bugs in Android OS, JavaScript API for face recognition in the browser with tensorflow.js, Social media apps are 'deliberately' addictive to users, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode23 Visit https://www.securityweekly.com/asw for all the latest episodes!...
A Bunch Of Robots - Application Security Weekly #23
July 06, 2018 09:00 - 1 hour - 62.9 MBThis week, Keith is joined by James Wickett from Signal Sciences to interview Thomas GX, CEO of Yelda and Founder of CommitStrip! In the news, Keith and James talk GitHub Hackers, Ticketmaster breach, Sniffing network traffic, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode22 Visit https://www.securityweekly.com/asw for all the latest episodes! →Visit our website: https://www.securityweekly.com →Follow ...
Close The Pod Bay Doors - Application Security Weekly #21
June 27, 2018 09:00 - 1 hour - 53.3 MBThis week, Keith and Paul interview Dan Kuykendall, Sr. Director of Application Security Products at Rapid7! In the news, Flaw in macOS 'Quick Look' could reveal encrypted data, the man who was fired by a machine, Deploy to Azure with Docker and VS Code, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode21 Visit https://www.securityweekly.com/asw for all the latest episodes! →Visit our website: https://www.s...
It's All Working - Application Security Weekly #20
June 20, 2018 09:00 - 1 hour - 89.2 MBThis week, we share our Pre-Recorded interview with Ron Gula, Founder of Gula Tech Adventures! In the news, Paul is joined by Business Security Weekly host Michael Santarcangelo to discuss Microsoft Windows remote kernel crash vulnerability, Cops are confident that iPhone hackers found a workaround to Apple's new security feature, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode20 Visit https://www.securityweekl...
Off The Cuff - Application Security Weekly #19
June 13, 2018 21:00 - 1 hour - 57.3 MBThis week, Keith and Paul interview Peter Chestna, Director of Developer Engagement at Veracode! In the news, Windows 10 update April 2018 update breaks SMBv1, GitHub vs. GitLab, ThoughtWorks Technology Radar, DevOps brings value to security, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode19 Visit https://www.securityweekly.com/asw for all the latest episodes! →Visit our website: https://www.securityweekly.com...
Eyeballs Everywhere - Application Security Weekly #18
June 06, 2018 09:00 - 1 hour - 53.4 MBThis week, Keith and Paul discuss what the difference is between Agile and DevOps! In the Learning and Tools, OWASP Top 10 Proactive Controls v3.0 released, VS Live Share, Bob Ross Lorem Ipsum, and more! In the news, we have updates from Oracle, Microsoft, GDPR, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode18 Visit https://www.securityweekly.com/asw for all the latest episodes! →Visit our website: https...
Just Go With It - Application Security Weekly #17
May 23, 2018 09:00 - 1 hour - 56.6 MBThis week, Keith and Paul interview James Wickett, Head of Research at Signal Sciences! In the news, we have updates from Nest, Node.js, Google, F.Secure, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode17 Visit https://www.securityweekly.com/asw for all the latest episodes!
Happy Dances - Application Security Weekly #16
May 16, 2018 09:00 - 57 minutes - 48.4 MBThis week, Keith and Paul interview Adam Gordon, Edutainer at ITPro.TV! In the news, we have updates from Uber, WhatsApp, Microsoft, and more on this episode of Application Security Weekly! →Full Show Notes: https://wiki.securityweekly.com/ASW_Episode16 →Visit https://www.securityweekly.com/asw for all the latest episodes!
Creating An Awesome Dish - Application Security Weekly #15
May 09, 2018 09:00 - 1 hour - 57.4 MBThis week, Keith and Paul continue to talk about building your AppSec program! In the Learning and Tools Segment, Keith and Paul discuss Snipe-IT: Open Source Asset Management, Astra: Automated Security Testing for REST API's, GREP: A whiteboard by Julia Evans, and more! In the news, we have updates from Twitter, Meltdown, JavaScript, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode15 Visit https://www.securityw...
Save The Developers Time - Application Security Weekly #14
May 02, 2018 21:00 - 58 minutes - 51.3 MBThis week, Paul and Keith discuss Building Your AppSec Program and how to get started! In the news, we have updates from Microsoft, Android, the FDA, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode14 Visit https://www.securityweekly.com/asw for all the latest episodes!
Bigger Than My Home - Application Security Weekly #13
May 01, 2018 19:54 - 1 hour - 62.7 MBThis week, Paul and Keith discuss Drupal 7 and 8 core critical releases, Irony of Leaky App at RSAC not lost on attendees, avoiding XSS in React is still hard, and more! In our Pre-Recorded interview, Paul and Keith sit down with Rami Sass, CEO and Co-Founder of WhiteSource, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode13 Visit https://www.securityweekly.com/asw for all the latest episodes!
Classy and Illustrious - Application Security Weekly #12
April 17, 2018 09:00 - 1 hour - 48.1 MBThis week, Paul and Keith discuss Github's 10th Anniversary and talk about Open Source Software! In the news, we have updates from Rapid7, a new MacOS backdoor, your Windows PC can be hacked by just visiting a site, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode12 Visit https://www.securityweekly.com/asw for all the latest episodes!
Don't Pull My Nerd Card - Application Security Weekly #11
April 09, 2018 21:00 - 57 minutes - 54.6 MBThis week, Paul and Keith discuss One Language to Rule Them All: Node-Based Operating System, NodeOS! In the news, we have updates from Cloudflare, Slack, NASA’s Voyager 1 spacecraft, how Georgia passed an Anti-Infosec Legislation, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode11 Visit https://www.securityweekly.com/asw for all the latest episodes!
Coming Up 7's - Application Security Weekly #10
April 03, 2018 09:00 - 53 minutes - 121 MBThis week, Keith and Paul have the debate as to whether it's DevOps or DevSecOps, they discuss OWASP vulnerable web apps directory project, Red Team wisdom, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode10 Visit https://www.securityweekly.com/asw for all the latest episodes!
More Crypto, More Problems - Application Security Weekly #09
March 19, 2018 09:00 - 57 minutes - 132 MBThis week, Keith and Paul discuss Uber's open source tool for adversarial simulation, AMD processors, Hijacked MailChimp accounts used to distribute banking malware, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode09 Visit https://www.securityweekly.com/asw for all the latest episodes!
Early Bird Gets The Worm - Application Security Weekly #08
March 12, 2018 21:27 - 53 minutes - 47.9 MBThis week, Paul and Keith talk about “The Phoenix Project”, Amazon admits Alexa is creepily laughing at people, Ethereum fixes serious ‘eclipse’ flaw, Kali Linux is now an app in the Windows App Store, Docker + Minecraft = Dockercraft, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode08 Visit https://www.securityweekly.com/asw for all the latest episodes!
Everything Old Is New Again - Application Security Weekly #07
March 05, 2018 15:23 - 56 minutes - 130 MBThis week, Keith and Paul discuss Facebook’s mandatory malware scan, GitLeaks: Check git repos for secrets and keys, New York quietly working to prevent a major cyber attack, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode07 Visit https://www.securityweekly.com/asw for all the latest episodes!
It's Just Beautiful - Application Security Weekly #06
February 17, 2018 10:00 - 58 minutes - 50.7 MBThis week, Keith and Paul discuss Data Security and Bug Bounty programs! In the news, Lenovo warns of critical Wifi vulnerability, Russian nuclear scientists arrested for Bitcoin mining plot, remote workers outperforming office workers, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode06 Visit https://www.securityweekly.com/asw for all the latest episodes!
Jim Carrey Hacked My Facebook - Application Security Weekly #05
February 10, 2018 10:00 - 50 minutes - 45 MBThis week, Keith and Paul continue to discuss OWASP Application Security Verification Standard! In the news, Cisco investigation reveals ASA vulnerability is worse than originally thought, Google Chrome HTTPS certificate apocalypse, Intel made smart glasses that look normal, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode05 Visit https://www.securityweekly.com/ for all the latest episodes!
Stay Classy - Application Security Weekly #04
February 05, 2018 18:13 - 58 minutes - 50.1 MBThis week, Keith and Paul discuss OWASP Application Security Verification Standard! In the news, Intel warns Chinese companies of chip flaw before U.S. government, bypassing CloudFair using Internet-wide scan data, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode04 Visit https://www.securityweekly.com/ for all the latest episodes!
The Doctor's Here - Application Security Weekly #03
January 27, 2018 10:00 - 59 minutes - 53.6 MBThis week, Keith is joined by Doug White, host of Secure Digital Life! Matias Madou of Secure Code Warrior joins us for an interview! In the news, Red Hat has now reverted CPU patches for Spectre, Russian Twitterbots are blaming the US shutdown on Democrats, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode03 Visit https://www.securityweekly.com/ for all the latest episodes!
Punishing Trojan Horses - Application Security Weekly #02
January 19, 2018 20:58 - 57 minutes - 49.5 MBThis week, Paul and Keith discuss the second half of the OWASP 2017 Top Ten! In the news, Facebook can track you by the dust on your camera lens, Apple health data used in murder trial, the stress of remote working, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode02 Visit https://www.securityweekly.com/ for all the latest episodes!
Pushing To Master - Application Security Weekly #01
January 15, 2018 17:42 - 1 hour - 51.6 MBThis week, Paul and Keith will discuss the ten most critical web application risks! In the news, how malicious NPM packages could harvest credit card numbers and passwords, NVIDIA updates video drivers to help address CPU memory security, multiple vulnerabilities in PHP could allow for arbitrary code execution, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode01 Visit https://www.securityweekly.com/ for all the l...
Where's My Starbucks - Application Security Weekly #00
January 08, 2018 14:20 - 53 minutes - 122 MBPaul Asadoorian and Keith Hoodlet bring you our brand new show, Application Security Weekly! On our first episode, Paul and Keith will discuss the history of application security and software security! In the news, what you need to know about CPU vulnerabilities, negative results testing Intel CPU design, Mozilla Firefox patches, and Starbucks Wi-Fi mines Monero via CoinHive! All that and more, on the first episode of Application Security Weekly! Full Show Notes: https://wiki.securityw...